VYPR

rpm package

suse/libssh&distro=SUSE Linux Enterprise Software Development Kit 12 SP1

pkg:rpm/suse/libssh&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP1

Vulnerabilities (1)

  • CVE-2016-0739MedApr 13, 2016
    affected < 0.6.3-11.1fixed 0.6.3-11.1

    libssh before 0.7.3 improperly truncates ephemeral secrets generated for the (1) diffie-hellman-group1 and (2) diffie-hellman-group14 key exchange methods to 128 bits, which makes it easier for man-in-the-middle attackers to decrypt or intercept SSH sessions via unspecified vecto